Applicable Environment
Figure 7-2 Interfaces of a virtual gateway
Internet
LAN
Internal servers
SSL VPN gateway
Remote terminal
Extranet
interface
Intranet
interface
When functioning as an SSL VPN gateway, the AR1200 provides two types of interfaces:
extranet interface and intranet interface.
l An extranet interface connects to the Internet. Users on a virtual gateway can access the
web login page by using the extranet interface address.
l An intranet interface connects to an internal server, allowing the virtual gateway to
communicate with the internal server.
NOTE
The intranet and extranet interfaces must be Layer 3 interfaces and have IP addresses.
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
sslvpn gateway gateway-name
The virtual gateway view is displayed.
Step 3 Run:
extranet interface interface-type interface-number
The extranet interface is configured.
By default, no extranet interface exists on a virtual gateway.
Step 4 Run:
intranet interface interface-type interface-number
The intranet interface is configured.
By default, no intranet interface exists on a virtual gateway.
----End
7.3.4 Binding an AAA Domain to the Virtual Gateway
To prevent unauthorized users from accessing internal resources and protect intranet security,
each virtual gateway must authenticate login users.
Huawei AR1200 Series Enterprise Routers
Configuration Guide - VPN 7 SSL VPN Configuration
Issue 01 (2012-04-20) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
368
To Next Page
Loading...
